Category: Privacy/Governance Feed

A new version of ClayRat Android spyware features enhanced surveillance and device-control features – Read More  –  

Security researchers will now be protected from prosecution in Portugal as long as they meet certain conditions – Read More  –  

React2Shell (CVE-2025-55182) is under active exploitation by Earth Lamia and Jackpot Panda, risking over two million instances worldwide – Read More  –  

A Home Office report has revealed racial bias in facial recognition technology used by police – Read More  –  

Barts Health NHS Trust has revealed itself to be the latest victim of Cl0p’s Oracle EBS campaign – Read More  –  

A critical RCE flaw in React.js, dubbed React2Shell (CVE-2025-55182), has been disclosed with a maximum CVSS score of 10.0, posing severe risks for server-side implementations – Read More  –  

CrowdStrike warned that Warp Panda, a China-linked cyber-espionage group, is targeting US organizations to steal sensitive data and support Beijing’s strategic interests – Read More  –  

The French museum is planning to revamp its safety and security systems following a high-profile burglary in October – Read More  –  

Data leaks have shed a new light on Intellexa’s flagship spyware infrastructure and attack vectors – Read More  –  

Cybersecurity agencies have issued guidance for securely integrating AI into OT systems – Read More  –  

UK’s NCSC and Canada’s CCCS release a joint report on content provenance, urging organizations to strengthen digital trust and combat AI-driven misinformation – Read More  –  

The GhostFrame phishing framework, using stealthy iframes, was linked to over 1 million attacks – Read More  –  

ISC2 report reveals 59% of global organizations have critical or significant skills shortages – Read More  –  

The Information Commissioner’s Office has chosen only to reprimand the Post Office after a 2024 breach – Read More  –  

A fresh wave of spear-phishing linked to the Russia-based Star Blizzard group has been detected by Sekoia – Read More  –  

A critical vulnerability in Yearn Finance’s yETH pool allowed an attacker to steal around $9m – Read More  –  

A new cyber defense service has prevented almost one billion early-stage cyber-attacks in the past year, British Security Minister claims – Read More  –  

The UK government’s proposed ransomware payment ban for public sector and critical infrastructure will come with national security exemptions – Read More  –  

A new WEF report reveals that AI-powered threats like disinformation are among executives’ biggest concerns – Read More  –  

The Pall Mall Process begins outreach to define guidelines for private commercial intrusion industry – Read More  –  

Trends toward a digital-first enterprise have already entered watershed data privacy and security in 2026. New regulation, technology and… The post Looking Ahead: 2026 Privacy & Security Trends appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

3 critical zero-day flaws in PickleScan, affecting Python and PyTorch, allowed undetected attacks – Read More  –  

Infected 4.3 million Chrome and Edge users via extensions; ShadyPanda exploited browser marketplaces – Read More  –  

Google said it found indications that two newly identified vulnerabilities affecting Android “may be under limited, targeted exploitation” – Read More  –  

The UK Information Commissioner’s Office has launched an investigation into the mobile gaming sector – Read More  –  

New IO study claims 88% of US and UK firms are concerned about state-sponsored cyber-attacks – Read More  –  

The principle of consent and data subject rights has evolved to be treated as a compliance checkbox to form… The post The New Standard: Consent & Data Subject Rights under UAE and GCC Laws appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Android malware Albiriox emerged as MaaS, offering device takeover and real-time fraud capabilities – Read More  –  

The South Korean police are tracking the suspect behind a cyber-attack targeting e-commerce giant Coupang – Read More  –  

Malicious npm package targets AI security with misleading prompts, exploiting automated analysis – Read More  –  

November 2025 saw cybersecurity giants like Palo Alto Networks, Bugcrowd and Zscaler invest in AI-powered security solutions – Read More  –  

Europol, alongside Swiss and German authorities, dismantled the illegal cryptocurrency mixing service ‘Cryptomixer’ – Read More  –  

A Western Australia man will spend seven years behind bars after stealing intimate data via Wi-Fi – Read More  –  

At least one London council has had data compromised after a suspected ransomware attack last week – Read More  –  

Enterprise security is approaching one of the most critical periods as we approach 2026. The speeding up of digitalization,… The post Top 5 Enterprise Security Trends For 2026 appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

BitSight research has revealed how threat actors exploit calendar subscriptions to deliver phishing links, malware and social engineering attacks through hijacked domains – Read More  –  

Darktrace observed a 620% spike in Black Friday-themed phishing in the weeks leading up to the 2025 edition of the sale day – Read More  –  

The personal data of over two million amateur football players registered in France could be exposed – Read More  –  

The healthcare industry is experiencing a digital revolution. Starting with telemedicine and digital prescriptions, with in-built insurance systems, healthcare… The post CryptoBind Secures the Core of National Digital Healthcare Transformation appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Hackers have been hijacking US radio equipment to broadcast false emergency alerts, prompting FCC warnings – Read More  –  

A new Bloody Wolf campaign exploits legitimate remote-administration software for cyber-attacks on government targets in Central Asia – Read More  –  

Almost two million people may have seen their personal data exposed following a large-scale cyberattack that hit Asahi in September 2025 – Read More  –  

The breach may have exposed OpenAI API customers’ data – Read More  –  

Analysis of ICO records shows no surge in breaches during Q4 2024 with no seasonal spike in reported incidents – Read More  –  

New phishing domains point to a campaign from the notorious Scattered Lapsus$ Hunters collective – Read More  –  

Shona Lester, head of the Cyber Security and Resilience Bill team within the UK government, outlined some of the provisions that should be included in the future law – Read More  –  

The worldwide outlook on privacy has demonstrated unquestionable progression as we enter November, and this indicates that data security… The post November Industry Wrap-Up: Data Privacy Lessons Learned appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

A cyber-attack claimed to be the resposibility of INC Ransom group and targeting the OnSolve CodeRED platform has disrupted emergency notification and exposed user data across the US – Read More  –  

A new report from the UK Business and Trade Committee has called for accountability of software providers for cyber flaws amid rising attack costs – Read More  –  

The FBI reports over $262m in losses from account takeover schemes since January 2025, as cybercriminals impersonate financial institutions to steal data and funds – Read More  –